IAM Architect

We are seeking an experienced IAM Architect to design, implement, and govern enterprise-scale identity, authentication, authorization, and privileged access solutions. This role provides architectural leadership across Microsoft Active Directory, Microsoft Entra ID (Azure AD), Okta, and CyberArk, ensuring secure, scalable, and compliant identity platforms across hybrid and cloud environments.

Responsibilities

Key Responsibilities

Architecture & Strategy

• Define and own the IAM reference architecture across on-prem, hybrid, and multi-cloud environments
• Design identity solutions aligned to Zero Trust, NIST, and least-privilege principles
• Develop IAM roadmaps, standards, patterns, and technical guardrails
• Lead IAM platform modernization and cloud identity transformation initiatives

Identity & Directory Services

• Architect and govern Microsoft Active Directory (on-prem) including:
  • Forest/domain design, trusts, GPOs, LDAP, DNS integration
  • AD security hardening and tiered admin models
• Design and manage Microsoft Entra ID (Azure AD) including:
  • Hybrid identity (AAD Connect / Cloud Sync)
  • Conditional Access, MFA, Identity Protection
  • B2B/B2C identity scenarios

Access Management & Federation

• Architect Okta for:
  • SSO, federation (SAML, OIDC, OAuth 2.0)
  • Lifecycle Management (JML processes)
  • MFA and adaptive authentication
• Integrate Okta and Entra ID with SaaS, custom, and legacy applications

Privileged Access Management

• Design and implement CyberArk PAM solutions including:
  • Vault architecture and high availability
  • Privileged credential lifecycle management
  • Session management and privileged access monitoring
• Define privileged access policies for infrastructure, cloud, and applications

Governance, Risk & Compliance

• Define IAM governance models, access reviews, and entitlement management
• Support compliance requirements (SOX, ISO 27001, SOC 2, PCI, HIPAA as applicable)
• Perform IAM risk assessments and threat modeling
• Lead incident response activities related to identity and access security

Technical Leadership

• Serve as the IAM subject matter expert for engineering and security teams
• Provide design reviews, solution validation, and architectural oversight
• Mentor IAM engineers and support operational teams
• Collaborate with application owners on secure authentication design

Qualifications

The IAM Architect partners with security, infrastructure, application, and compliance teams to deliver Zero Trust–aligned identity solutions while driving modernization and automation initiatives.

About UsAt Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus.
Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. Explore Life at Zensar and join us to Grow. Own. Achieve. Learn. to be the best version of yourself.
We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.